Critical Nginx UI auth bypass flaw now actively exploited in the wild

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full ...

Anthropic's Mythos isn't threatening bitcoin. The real AI risk is at crypto exchanges

The Bitcoin blockchain itself has never been hacked and has operated securely and without interruption since 2009. The Mythos ...
Security Boulevard

GitHub Actions Supply Chain Attack: Trivy Breach & Workflow

Breakdown of the Trivy GitHub Actions attack, including workflow misconfigurations, token theft, and supply chain exposure.

Claude Mythos Isn’t Just A PR Stunt, It’s The New Face Of Offensive AI

Claude Mythos represents a new generation of AI models that can conduct autonomous attacks more effectively than ever before.
Tech Xplore

OpenAI announces restricted-access cybersecurity model

Artificial intelligence company OpenAI said Tuesday that it would release its latest cybersecurity model to a limited number ...
eWeek

OpenAI Debuts GPT-5.4-Cyber, a Locked-Down AI Model for Cyber Defense

OpenAI launches GPT-5.4-Cyber with selective access for verified defenders, adding a cyber-focused model and tighter controls ...
The Hacker News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

CVE-2026-33032 exposes nginx-ui to unauthenticated takeover via MCP endpoint, impacting 2,600+ instances with active ...